F-Secure® Client Security 9.32 build 112 RTM

Copyright © 1993-2012 F-Secure Corporation. All Rights Reserved.
Portions Copyright © 2004 BackWeb Technologies Inc.

This product may be covered by one or more F-Secure patents, including the following: GB2353372, GB2366691, GB2366692, GB2366693, GB2367933, GB2368233, GB2374260

1.     General

This document contains information about F-Secure Client Security 9.32 RTM. We strongly recommend that you read the entire document. Please refer to the online help for more information.

2.     Product contents

This product the following features that you can install:

·         Virus & Spyware Protection – protects your computer against viruses, trojans, spyware, rootkits and other malware.

·         Internet Shield – consists of Firewall, Application Control, Intrusion Prevention (IPS) and Dial-up Control.

·         E-Mail Scanning – detects malicious content in e-mail traffic (IMAP4, POP3 and SMTP protocols) to protect you against e-mail malware.

·         Web Traffic Scanning – detects and blocks malicious content in web traffic (HTTP protocol) to provide additional protection against malware.

·         DeepGuard™ – proactive, instant protection against unknown threats. It monitors application behavior and stops potentially harmful activities in real-time.

·         Browsing Protection – provides additional protection against web browser exploits and rogue web sites.

·         Device Control – lets you control and disable hardware devices.

·         Microsoft NAP Plug-in –integrates with Microsoft Network Access Protection (NAP).

·         Cisco NAC Plug-in –integrates with Cisco Network Admission Control.

The supported languages are: English, Chinese (P.R.C, Taiwan, Hong Kong), Czech, Danish, Dutch, Estonian, Finnish, French, Canadian French, German, Greek, Hungarian, Italian, Japanese, Norwegian, Polish, Portuguese, Brazilian Portuguese, Romanian, Russian, Slovenian, Spanish, Latin American Spanish, Swedish and Turkish.

3.     Installation and system requirements

Before you install the product, we recommend that you review the sections in this section to make sure that your network, hardware, software, and other system components meet the requirements for F-Secure Client Security 9.32 RTM.

3.1      Stand-alone or centrally managed installations

If you plan to install the product as a standalone installation, run the setup program (fscs-9.32-112-rtm.exe) locally on target computers. Note that installation requires that you have local administrator rights.

Note: In this RTM, the Device Control feature can be managed only from Policy Manager Console.

For centrally managed installations, import the installation JAR package (fscs-9.32-112-rtm.jar) to Policy Manager Console and deploy the product remotely to selected hosts. With Policy Manager Console, you can also export an MSI package that you can deploy via other central management systems to install the product.

3.2      Supported platforms

This release can be installed on the following platforms:

·         Microsoft Windows XP with SP3 (32-bit editions only)

·         Microsoft Windows Vista (all 32-bit and 64-bit editions)

·         Microsoft Windows Vista with SP1 or newer (all 32-bit and 64-bit editions)

·         Microsoft Windows 7 (all 32-bit and 64-bit editions)

·         Microsoft Windows 7 with SP1 or newer (all 32-bit and 64-bit editions)

3.3      Recommended hardware requirements

Microsoft Windows 7 and Vista

·         Processor: Intel Pentium 4 2GHz or higher

·         Memory: 1GB or more

·         Disk space: at least 1 GB

·         Internet connection: an Internet connection is required to receive updates

Microsoft Windows XP SP3

·         Processor: Intel Pentium III 1Gz or higher

·         Memory: 512 MB or more

·         Disk space: at least 1 GB

·         Internet connection: an Internet connection is required to receive updates

3.4      Centralized management requirements

The product can be deployed and managed with F-Secure Policy Manager 9.00 or newer. We recommend that you use F-Secure Policy Manager 10.01.

3.5      Upgrading from previous versions

This RTM build supports upgrading from all previous Client Security 9.x versions.

4.     What’s new

This section describes the new features, enhancements, and the most important issues solved in F-Secure Client Security 9.32 RTM.

4.1      New features and enhancements

·         Process exclusions – you can exclude trusted processes from the real-time scan.

·         DNS refresh interval – you can configure how often you want to resolve IP addresses from DNS names, which are specified in F-Secure firewall rules.

4.2      Fixed issues

The following issues have been solved in this RTM build since the previous (9.31) release:

·         MSI/Jar installation is using SMBIOS GUID always, regardless of Host identification choice made in Policy Manager Console “Configure communication with Policy Manager Server” window (CTS-87549).

·         Firewall is not blocking DNS names randomly (CTS-73398).

·         Running Dameware Mini Remote Control results to BSOD (CTS-84047).

·         DeepGuard uninstallation causes FSMA to stop (CTS-83732).

·         DeepGuard 3 rejects configuration. Error code: XML parse failed (CTS-82724).

·         Publisher, version, and size information is not available in Windows “Uninstall or change a program” list (CTS-82523).

·         FSHDLL32 crashes after reboot, caused by FSAUA.dll (CTS-72418).

·         “Enter customer host properties” in Policy Manager Console 10.00 shows corrupted Japanese character (CTS-84722).

5.     Known issues

5.1      Installation, upgrade and uninstallation

Policies are not received immediately after reboot

In some cases, the installed client may not receive policies immediately after the reboot. Usually, the client receives the new policy after some time and recovers automatically. If this does not happen, restart the computer.

Unused databases are still visible after upgrade

When upgrading, some databases and engines that were used by the previous version may not be needed anymore. They are still visible in “Settings > Other settings > Downloads”, marked as “Not Installed”. This is normal and will disappear automatically after 7 days.

System might be slow for several minutes after the first reboot while the installation finishes

The system may start up slowly during the initial restart after the installation. The product downloads and installs various updates to finalize the installation in the background after the restart.

The effect is more noticeable after a fresh installation, as more updates need to be downloaded. The local user interface has a blue status indicator and a “Completing Installation” status until the installation is complete.

Subsequent restarts are not affected.

NAP Health Validator is not removed from configured health policies during uninstallation

During uninstallation, references to F-Secure System Health Validator (SHV) are not automatically removed from health policies. Computers that use these policies are considered as non-compliant with health policies and they are quarantined. To correct broken references to F-Secure SHV, open the health policies properties from Network Policy Server console (nps.msc) and confirm the automatic update.

5.2      DeepGuard

DeepGuard does not protect services in Windows 7 (CTS-65247)

While stopping protected services from the command line or from the Services applet, DeepGuard does not prompt about the event. However, it still protects services from the most malicious stop attempts. This issue exists only in the 32-bit version of Windows 7.

5.3      Browsing Protection

Disabling Browsing Protection requires closing open browsers to take effect

If you have a web browsers open and turn off the Browsing Protection feature, the change affects the browser only after you close and restart it.

Browsing Protection toolbar may be not be visible in Internet Explorer 7

When you launch Internet Explorer 7 after a fresh installation, the Browsing Protection toolbar may not be visible. Browsing Protection still work, even without the toolbar. To solve this issue, close and restart Internet Explorer 7.

5.4      Anti-Virus

Incorrect engine versions are shown in policy statistics

The Status tab of Policy Manager Console (F-Secure Anti-Virus > Plug-ins table) shows incorrect engine versions after a clean installation. This affects scanning reports. To solve this issue, restart the FSGKHS service.

5.5      Dial-up control

“Disallow user changes” doesn’t work for the dial-up control table

Even when the “disallow user changes” restriction is set in Policy Manager, users can modify the dial-up control table from the local user interface of Client Security.

6.     Contact  information and feedback

We look forward to hearing your comments and feedback on the product functionality, usability and performance.

Please report any technical issues through the F-Secure support web site:

When reporting a technical problem, please attach the F-Secure system summary report to the feedback.  To collect the system summary report, you need to have administrator rights.

·         In Windows XP:

1.     Select Start > All Programs > F-Secure Client Security 9.32.

2.     Right-click on “Support Tool”.

3.     Select Run.

4.     Select to run the program as administrator.

·         In Windows Vista and Windows 7:

1.     Select Start > All Programs > F-Secure Client Security 9.32

2.     Right-click on “Support Tool”

3.     Select Run as administrator.

7.     F-Secure license terms

F-Secure license terms are included in the software. You must read and accept them before you can install and use the software.